Alternatives and similar repositories for DDE-Extractor

Users that are interested in DDE-Extractor are comparing it to the libraries listed below

• JR0driguezB / malware_analysis
  Various snippets created during malware analysis
  ☆22Updated 7 years ago
• sekirkity / SeeCLRly
  Fileless SQL Server CLR-based Custom Stored Procedure Command Execution
  ☆35Updated 8 years ago
• leoloobeek / GoGreen
  Environmental (and http) keying for scripting languages
  ☆39Updated 6 years ago
• p3nt4 / PSUnlock
  ☆19Updated 8 years ago
• GelosSnake / MalwareResearchAPI
  API functions for Malware Research
  ☆35Updated 5 years ago
• RISCYBusiness / Jadoube
  ☆22Updated 7 years ago
• nccgroup / WindowsFirewallHookDriverEnumeration
  Tools to enumerate Windows Firewall Hook Drivers on Windows 2000, XP and 2003
  ☆20Updated 10 years ago
• vallejocc / Malware-Analysis-scripts
  Scripts targeting specific families
  ☆13Updated 7 years ago
• mogwailabs / canape-workshop2018
  Material from our CANAPE workshop
  ☆32Updated 6 years ago
• Skons / ms17-0100
  Mixing up CVE and MS like a pro
  ☆25Updated 8 years ago
• johnjohnsp1 / MimkatzCollider
  Mimikatz HashClash
  ☆12Updated 10 years ago
• jaredhaight / ReflectCmd
  A simple reflective dll example
  ☆19Updated 8 years ago
• nccgroup / Royal_APT
  Royal APT - APT15 - Related Information from NCC Group Cyber Defense Operations Research
  ☆53Updated 7 years ago
• ShellcodeSmuggler / IAT_POC
  POC for IAT Parsing Payloads
  ☆48Updated 8 years ago
• dzonerzy / winescalation
  Python based module to find common vulnerabilities which lead to Windows privilege escalation
  ☆32Updated 8 years ago
• eset / volatility-browserhooks
  Volatility Framework plugin to detect various types of hooks as performed by banking Trojans
  ☆41Updated 6 years ago
• silascutler / IDA_AutoAnalysis
  IDA Pro plugin that rename functions on load, based on functionality
  ☆19Updated 7 years ago
• aserper / DDEtect
  Simple DDE object detector
  ☆56Updated 7 years ago
• itsreallynick / office-crackros
  Crack your macros like the math pros.
  ☆33Updated 8 years ago
• vysecurity / PSPunch
  An offensive Powershell console
  ☆30Updated 9 years ago
• malware-kitten / yara_sig_tool
  A tool to generate yara signatures from function blocks
  ☆19Updated 10 years ago
• ParsingTeam / ppsx-file-generator
  CVE-2017-8570 Exploit
  ☆21Updated 7 years ago
• DissectMalware / MalwareCMDMonitor
  Shows command lines used by latest instances analyzed on Hybrid-Analysis
  ☆43Updated 6 years ago
• JamesHabben / MalwareStuff
  ☆16Updated 10 years ago
• retbandit-zz / BlackHat2017
  BlackHat Europe 2017 Slides
  ☆26Updated 7 years ago
• vysecurity / Invoke-ProcessScan
  Gives context to a system. Uses EQGRP shadow broker leaked list to give some descriptions to processes.
  ☆45Updated 8 years ago
• tyranid / ZeroNights2017
  Some sample code from my Zero Nights 2017 presentation.
  ☆61Updated 7 years ago
• FuzzySecurity / CapstoneKeystone-PowerShell
  PowerShell Module Bindings for Capstone/Keystone
  ☆24Updated 8 years ago
• AonCyberLabs / BadSamba
  This module is used to exploit startup script execution through Windows Group Policy settings when configured to run off of a remote SMB …
  ☆22Updated 5 years ago
• seth1002 / tracecorn_tina
  a modified version base on Tracecorn
  ☆20Updated 5 years ago